ONE-NET WBSC Systems Engineer
Vectrus
- San Diego, CA
- $110,000-130,000 per year
- Permanent
- Full-time
Responsibilities
- Provide sustainment and troubleshooting support of workstation task sequences in a lab and production environment; includes task sequence steps with supporting content, such as driver packages, software updates, and Boot WIM.
- Provide Information Assurance analysis and scanning of new Workstation models and applications using Assured Compliance Assessment Solution (ACAS) and Security Compliance Automated Protocol (SCAP) or applicable security analysis tools and provide outputs of services and protocols.
- Assist the Application Security Assessment by ensuring that applications are ready for Information Assurance (IA) security compliance reviews and work with vendors to resolve any initial findings resulting from an IA security review.
- Work with customers to obtain any required documentation, media or installation instructions as required to process the RFC and ensure that WBSC hardware and applications are in compliance with DODI 8500.2, policies and Federal Information Security Management Act (FISMA).
- Ensure compliance of Security Requirements Guides (SRG) or Security Technical Implementation Guides (STIGs) for Defense Information Systems Agency (DISA) and provide feedback to the Security Engineering and Certification & Accreditation (C&A) Teams.
- Provide Patch Management for all approved baseline workstation (Line of business) applications and support the Engineering team to incorporate patches into the patch management system. This effort will support deficiency correction and modification for the WBSC Software Packages that will be deployed at eight separate environments (2 lab and 6 operational), as patches are released.
- Test patches (manually and via automated methods) in the lab environment and document patches that apply to a particular WBSC image version and provide assistance with issues regarding patch deployment to the operational sites during modernization efforts.
- Support baseline application development and sustainment, prepare workstation images on alternate media, and prepare custom, pre-staged Win 10 images for pre-installation on vendor hard-drives.
- Perform periodic Microsoft Endpoint Configuration Manager (MECM) server cleanup of older WBSC assets, including MECM objects and folders on CAS servers in production and the lab; prepare and submit weekly MECM compliance reports to the government customer as required.
- Provide lab and engineering support in preparation for Command Cyber Readiness Inspections (CCRI), as requested by the government customer.
- Candidate must be capable of working independently with little or no supervision in a high operations tempo environment; candidate may be requested to work alternate work hours or outside normal working hours on-site or via phone, email, or computer to assist with troubleshooting or casualty resolution.
- Education/Certifications:
- BS in Information Technology (or equivalent technical degree) or 8+ years technical experience in related discipline required.
- IAT2 certifications required for both OS and IA (Security+ CE or equivalent required).
- Certification as CISSP or equivalent for IA (IAT3 per DoD Inst 8570.1) may be required, and candidate must be able to obtain within 6 months of direction.
- Windows Server and VMWare training/certifications highly desired. 2+ years’ experience on a military enterprise network highly desired.
- Must be experienced with IAVAs and patching, backups using enterprise level tools and systems with operational experience.
- Ability to produce quality documentation required. Ability to troubleshoot network and operating system issues across multiple platforms required.
- The candidate must be familiar with DoD Certification and Accreditation requirements (DISA STIGs, DITSCAP/DIACAP requirements), and must be experienced in security remediation of Windows Server and Desktop systems. Experience with HBSS highly desired. Experience using Remedy for ticket documentation/resolution highly desired.
- Clearance Requirement:
- Secret Clearance required.
- Experience:
- 6+ DoD Enterprise or Navy C4I Networks required
- 6+ Performing DoD C&A, DIACAP and DISA STIGs required
- 6+ Troubleshooting network and operating system issues across multiple platforms required
- 2+ Operate HBSS and ACAS required
- California Salary Range:
- $110,000 - $130,000
- The salary range provided is intended to display the value of the company’s base pay compensation for locations in the state of California.